I'm looking for practical advice on the OWASP rule set for mod_security. I've heard it has many false positives, and wondering if people have successfully applied it?
I can't afford the TrustWave and my first few interactions with Atomicorps GotRoot rules has not been positive so I'm exiting my options.
Are there any other rule set providers?
Aucun commentaire:
Enregistrer un commentaire